A default off option to read user from specified header is fine for me, PR welcome, though if I were you I would just put a simple reverse proxy in 50 odd lines of python between the calibre server and your frontend that adds the authorization header based on REMOTE_USER and then forwards to calibre.
But as I said I am ok with such an option provided I dont have to do the work to implement it. You choose whichever path is less work for you.
|